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1 . ... 

Method and Ap paratus fo r Secure TCP/TP Communication 

The present invention seeks to provide a method of and apparatus for securely 
establishing Internet connections, 
i 

Public IP networks have become pervasive. Organisations now wish to use these 
networks to provide interconnectivity between trusted areas or devices. The trusted 
devices may be located, for example, at branch offices or homes. Trusted areas could 
include corporate offices. 

In light of the public nature of these networks, organisations need to take defensive 
measures against direct attack. Existing session establishment for TCP/IP, is inherently 
insecure and prone to exploitation by active and intrusion attacks. Standard TCP/IP 
services reveal their presence to any attacker on the Internet, thus making them available 
for exploitation and attack. Denial of service attack and SYN flood attacks exploit these 
weaknesses. 

The proposed method provides a solution for protecting against these attacks whilst at the 
same time providing a scalable and flexible method for exchanging data securely over 
Public IP networks using TCP connections. The system provides for the generation and 
transmission of datagrams to establish a TCP/IP connection, which datagrams do not 
reveal the data normally provided when initiation a TCP/IP connection. In its simplest 
form, the datagram provides simply destination and source addresses. Optionally, the 
datagram can also include information relating to the initialisation for the TCP 
connection. 

The datagram can, if desired, include cryptographic functions. 

In particular the use of specific datagrams, for session establishment provides for the . 
end-point devic^s£initiator and rfecwve*;' t^be invisible to attack^rs'.on the Public IP 



infrastructure. TCP is chosen in the preferred embodiment as a reliable data carrier over 
IP networks. 

Prior to the establishment of a TCP/IP connection the initiating part sends a datagram to 
the receiving device requesting a connection be initiated by the receiving party to the 
initiating party. The datagram may optionally contain data content which can be used by 
the receiving party to authenticate the initiating party. Following receipt of the datagram 
the receiving party opens a TCP connection to and, optionally, negotiate a payload 
encryption key with the initiating party. Ifwould be preferable at this stage for both ends 
to authenticate each other. 

Where reference is made to 'Public IP Network(s)' the intention is to include IP 
networks which are less trusted than the trusted domains which are being interconnected. 

In the preferred embodiment, the end points are boundary network devices, protecting 
trusted areas from the un-trusted IP network. Receiving devices would await incoming 
datagrams requesting connections. These could contain a payload which offers 
authentication of the requesting device. The responding device can process these 
requests as system resources allow, although this may be accelerated by the use of 
specific hardware devices. Once the responding device evaluates a requesting datagram 
as acceptable it will attempt to open a TCP connection to the initiating device. 

Once opened successfully both entities can use the TCP/IP connection to communicate. 
The option exists to incorporate TCP payload encryption at this point to ensure the date 
being transferred is secure and will remain confidential. 
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